Buffer overflow in Schneider-electric Citecthistorian

CVE-2011-4033

Buffer overflow in the Steema TeeChart ActiveX control, as used in Schneider Electric Vijeo Historian 4.30 and earlier, CitectHistorian 4.30 and earlier, and CitectSCADAReports 4.10 and earlier, allows remote attackers to cause a denial of…

Vulnerability class: Buffer Overflow

EPSS: 0.006 (68.7th percentile) — read the EPSS interpretation.

Affected products

Schneider-electric Citecthistorian — versions 4.20
Schneider-electric Citectscada_reports — versions 4.0
Schneider-electric Vijeo_historian — versions 4.0, 4.10, 4.20
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

cret@cert.org (x_refsource_CONFIRM)
cret@cert.org (US Government Resource, x_refsource_MISC)
cret@cert.org (x_refsource_CONFIRM)